Four industrial control system vendors each announced vulnerabilities that ranged from critical to high-severity. Real Time Automation and Paradox both warned of critical vulnerabilities Tuesday that opened systems up to remote attacks by adversaries. Vulnerabilities are rated 9.8 out of 10 in severity by the industry standard Common Vulnerability Scoring System. Sensormatic Electronics, a subsidiary of Johnson Controls, and Schneider Electric reported nine bugs in its Interactive Graphical SCADA System, among others. In addition to the RTA and Paradox bugs, Sensormatics and ICS behemoth Schneider Electric.
Source: https://threatpost.com/ics-vendors-warn-critical-bugs/161333/